Disable Guest Account
The local Guest Account provides a potential door into your system for hackers and hence it should be disabled
Group Policy ->Computer Configuration\Windows Settings\Security Settings\Local Policies\Audit Policy
One suggested auditing configuration is:
The local Guest Account provides a potential door into your system for hackers and hence it should be disabled
Virus Software
A Virus Scanner should be installed on the Member Server. CMU has a site license for Norton Antivirus and it can be downloaded from the MyAndrew website.
The Virus Definition (DAT) files should be set to automatically update. The automatic update times should be modified to be different than the default time. The entire file system should be scanned on a routine basis.
Auditing
Auditing is an effective security measure because it can help you track what an attacker (or errant user) is attempting to do and help provide insights on how to stop it. To enable auditing, your file system must be formatted as NTFS (see above).
Auditing can be configured with:Group Policy ->Computer Configuration\Windows Settings\Security Settings\Local Policies\Audit Policy
One suggested auditing configuration is:
Event | Success | Failure |
Account logon events | X | X |
Account management | X | X |
Directory service access | ||
Logon Events | X | |
Object access | X | X |
Policy change | X | |
Privilege use | X | |
Restart, Shutdown, and System | X | X |
Process Tracking |
0 comments:
Post a Comment